CVE-2024-47945

216.73.217.22

· Published 15/10/2024 10:15 · Modified 21/10/2024 19:41

Labels: CVE-2024-47945 2024-10-15 551230f0-3615-47bd-b7cc-93e92e730bbf CVE-2024-47945 CWE-331 CWE-340

Essential information

Published: 15/10/2024 10:15
Modified: 21/10/2024 19:41
Author: —
Creator: —
CVSS: 9.8 CRITICAL (v3.1)
CISA KEV: No
CWE: —
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

The devices are vulnerable to session hijacking due to insufficient entropy in its session ID generation algorithm. The session IDs are predictable, with only 32,768 possible values per user, which allows attackers to pre-generate valid session IDs, leading to unauthorized access to user sessions. This is not only due to the use of an (insecure) rand() function call but also because of missing initialization via srand(). As a result only the PIDs are effectively used as seed.

NVD status

Status: Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source: 551230f0-3615-47bd-b7cc-93e92e730bbf
NVD: View on NVD

Affected products (CPE)

Product	CPE
rittal / iot interface firmware	`cpe:2.3:o:rittal:iot_interface_firmware::::::::`
rittal / iot interface	`cpe:2.3:h:rittal:iot_interface:-:::::::*`
rittal / cmc iii processing units firmware	`cpe:2.3:o:rittal:cmc_iii_processing_units_firmware::::::::`
rittal / cmc iii processing units	`cpe:2.3:h:rittal:cmc_iii_processing_units:-:::::::*`